r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 150792cfc458af013998f4ef6bdf5f74
d5179b2dcb11d06f82606bf6eb6648319998d63e
72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10992
Expires: Tue, 29 Nov 2022 00:28:53 GMT
Date: Mon, 28 Nov 2022 21:25:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14635
Expires: Tue, 29 Nov 2022 01:29:36 GMT
Date: Mon, 28 Nov 2022 21:25:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6599
Cache-Control: max-age=140139
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:41 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:21:20 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7FRiqsKDMVHZYj5ujQE57nyVNW1flda4znfuA78j4BK25lGKRVQ+madtfNpqQFPoUcIZDy8ca2wR7jcc0zah7Q==
x-amz-request-id: MKBR7BJVVENXRE5K
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 20:45:10 GMT
age: 2431
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 21:17:49 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 472
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 21:25:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
badalascienceacademy.com/
162.214.80.24301 Moved Permanently 0 B URL HTTP/1.1 badalascienceacademy.com/
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 28 Nov 2022 21:25:41 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://badalascienceacademy.com/
Cache-Control: max-age=7200
Expires: Mon, 28 Nov 2022 23:25:41 GMT
X-Endurance-Cache-Level: 2
X-nginx-cache: WordPress
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 21:11:12 GMT
cache-control: public,max-age=3600
age: 869
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5640
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:41 GMT
Last-Modified: Mon, 28 Nov 2022 19:51:41 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1dc745bc162135d87d8c85ca16a4e2d0
e154e4a0da24f0fb2582f2093b3b7f6bf882962d
ec301df2441055f5b63d1ffdc3a4f267bc53a361cb85bd5849d2359544b5839d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC301DF2441055F5B63D1FFDC3A4F267BC53A361CB85BD5849D2359544B5839D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21565
Expires: Tue, 29 Nov 2022 03:25:07 GMT
Date: Mon, 28 Nov 2022 21:25:42 GMT
Connection: keep-alive
push.services.mozilla.com/
52.35.167.249101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.167.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7jseQ3j06CdpkPw4Ray/zA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0E42/0Qqy3M8K1InrxgtecYwlKw=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
badalascienceacademy.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
162.214.80.24200 OK 17 kB URL HTTP/2 badalascienceacademy.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (43771)
Hash 2a67a4888baa44de739f3fe56203ce07
da175eae57f26b655747d79f055477e3fee1abb9
3a4d7627476a0099ca4bcc101685f27de04cb49dd66ef842d72c6cda270599dd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 16594
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
162.214.80.24200 OK 4.9 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (24504)
Hash 50b19b70e48fdd58e84f4a34a4516eb7
103f1389caaf956c15e48c7c9261daf4cb101e03
dea6a0db1a51ac1d8cd055c8e21b02cd2b1786072298b5c097e605d2b77b6f51
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.6 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4861
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
162.214.80.24200 OK 5.3 kB URL HTTP/2 badalascienceacademy.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5321
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/css/ssb-ui-style.css?ver=6.0.2
162.214.80.24200 OK 597 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/css/ssb-ui-style.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2a7881ed23b21f50ed354a865d109a0d
5472f3ada74583d63035b82b552cf6fe634b8962
37ea17acf37d48afc13203771e0097e078343e1ac69136f4afd365d821a9b6bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-side-buttons/assets/css/ssb-ui-style.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 597
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/css/font-awesome.css?ver=6.0.2
162.214.80.24200 OK 12 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/css/font-awesome.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d871cd4eb14895e9536910a6486c3d10
ffdf6cd296ad21778d0a97a0423f7de1b733253e
167f4c57d13154e46f6291361d3ec0097e496f389d92fc24431d5b71c311f051
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-side-buttons/assets/css/font-awesome.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 11661
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
162.214.80.24200 OK 906 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 0f7adb8d75a91c2f9573b43d57da99cf
2599f0ec6a21f9fca26f11521c1ca6361e0140b2
30aee94e6d3ce37f05edf617ee99161023e03cf8b9c2ef354d1ed0167dab9a23
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/menu-image/includes/css/menu-image.css?ver=3.0.8 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 906
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/css/font-awesome.min.css?ver=6.0.2
162.214.80.24200 OK 6.7 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/css/font-awesome.min.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28900)
Hash 832c8c42861a6def7818ee8a1d40d370
bf48b37492f84a2d3a99a8e6754b85f56b4a900d
d2fb84b34fe77304be1729f123d2776c93bd45590fcf6fb38301be6636172006
GET /wp-content/themes/travelwp/assets/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 6709
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/js/ajax-auth-script.js?ver=6.0.2
162.214.80.24200 OK 565 B URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/js/ajax-auth-script.js?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash c5c623978870433b72c213611317cc8d
54c1d544269d289c2223c839637ca1ec190ecfde
ddf345f1dfd59fca1d35762d4effb7654d519197bc894687ed5cca58459341fd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/js/ajax-auth-script.js?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 565
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.8.0
162.214.80.24200 OK 3.5 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9690)
Hash 7b1a461d670c0b0c027db6cfa2359679
e8f90ba411e5d38e5574bf924eb70e78652a3cb8
33c804c4eb789961b104790cbf45567bee85eb43a38b7c60c80c9454408b8a39
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/js/vc_carousel.min.js?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3459
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.9
162.214.80.24200 OK 3.1 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.9
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (7996), with no line terminators
Hash d1c9564ba057c67abbf92063047fbd0b
62e211fdb6c7277c0cf8b4c24a96fc986d7f9db5
630854c465b2a91eafc869896e89749a20215a5b99a4cf0eb930ba5c6a7584bc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/creame-whatsapp-me/public/js/joinchat.min.js?ver=4.5.9 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3144
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/js/theme.js?ver=6.0.2
162.214.80.24200 OK 5.0 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/js/theme.js?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 077b9e98d59ea00350a42b61b28980cf
f57c69d8ee0a9738c33183be9f97aba3a35239b8
fc35ae9d15fc34ef763d7d3a802ff963fc5eb9212f33ccd8965e2d58f20a1ae2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/js/theme.js?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4991
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
162.214.80.24200 OK 7.3 kB URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15439)
Hash f978912a035ef4780696eed21f9b5218
fd3449da907dfb0328c0396bee6e38607c103d1c
9dcb800ee3731ab7d187c027d586207a454333a37eec291fb4ef6cc5df7cf8b7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 7311
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/
162.214.80.24200 OK 49 kB URL HTTP/2 badalascienceacademy.com/
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (21475)
Hash 3b7bda221b8d2605a3f8496a1a285923
d4a963f8af4f7cf8aa81bfa51f2d10eb08079d37
06f12886ba360a39def8d16c455fd223cfe518d87e0fba2bf4a1bbf507c4a91b
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
link: <https://badalascienceacademy.com/wp-json/>; rel="https://api.w.org/", <https://badalascienceacademy.com/wp-json/wp/v2/pages/1673>; rel="alternate"; type="application/json", <https://badalascienceacademy.com/>; rel=shortlink
cache-control: max-age=7200
expires: Mon, 28 Nov 2022 23:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/01/bullet_arrow_r.png
162.214.80.24200 OK 103 B URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/01/bullet_arrow_r.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash ee1c958fac887d3b4e2074e261170f72
0640c98b88be452723e9122f1f856559be3b2811
ec9d63dffc0b49201f35781ce91f6e6a37979efa55cd17bba6b2a396934e4723
GET /wp-content/uploads/2022/01/bullet_arrow_r.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 103
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:42 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1
162.214.80.24200 OK 480 B URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (644)
Hash 6fa4ae3e4e3041593408b92219e16413
115d6d7e186d26fc75b442857207135a8c0c1e8b
4899f304889f6dc4fb525d0c2e5b50072801303fc116dc4158d80101de2abd06
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect-shake.min.js?ver=1.13.1 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 480
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/css/flaticon.css?ver=6.0.2
162.214.80.24200 OK 754 B URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/css/flaticon.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 529c1090a455bb1d64aa48ffd4fdb39b
0c6caaa967e521aadec003ace175222c4b957298
a0ebf8958898772e4e7ff7077606c6fac7d1716099a2a13768402d04e222f706
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/css/flaticon.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 754
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.9
162.214.80.24200 OK 2.5 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.9
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6021), with no line terminators
Hash 5970e7598cf1a83c35e762ae20415920
8660ae5456c778a1603ae5a8e07f1497cff5c50c
4ab655357d11e783d63e4ce3d227e7d75bec807e67355a8eaf17954d151cdc5a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/creame-whatsapp-me/public/css/joinchat-btn.min.css?ver=4.5.9 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2462
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.214.80.24200 OK 4.6 kB URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4618
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0
162.214.80.24200 OK 3.6 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10774)
Hash 3d656cb28263faf51d36552dcc972805
788d9b26445a6212a9587a1082557196e31363c7
f50d77c7c3b0bfda01ed800b330e2e7c45d619f211ff35eb4f1d117692f4c4f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/js/lightbox.min.js?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3643
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
162.214.80.24200 OK 7.1 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19905)
Hash 11c71ebe3b5ee1cc9acd2fcfd152f186
2b36c7b86094a60c194187c30273fd4434b9ed6b
ac582bbaaf2eedfff77b28db99253070f31d0262e3c8ca7751cbfdb0ba1fa6f4
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 7084
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/js/ssb-ui-js.js?ver=6.0.2
162.214.80.24200 OK 513 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/js/ssb-ui-js.js?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash a5f83dfaa59436bb354706ceed2209ca
87743f29708c4a066357b79d39e47e0c1c996f37
952795c768c948f04fc5b19fb4f6f001e27e7b7c866e7bab6134b4393881983b
GET /wp-content/plugins/sticky-side-buttons/assets/js/ssb-ui-js.js?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 513
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0
162.214.80.24200 OK 4.8 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (51719)
Hash bbb73736be32eb084dfece7d92f79b8b
edfda1062d1abe6f9762c3cfa658586aa363554e
eabef9d2d86c3d7204a06468e84e036e6772af3ed222ab0bebb4a224baf1ede8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 4776
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.214.80.24200 OK 8.2 kB URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a0a1c8194f131320e1798f90a7b1262a
3346d35be1f2e4886f19e7fcc0cc96ee4753d9ed
7f618ab13cec0933ec2c61fa2b580ad77ca41522028649677494219fa9ce56db
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 8169
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/css/font-linearicons.css?ver=6.0.2
162.214.80.24200 OK 1.6 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/css/font-linearicons.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e92b314f5199a829c25d3dbb04afdc53
9a7e58e0a202b929b7a491b6b6764903989158c1
ee536e0611bc689e50fbfa68bb62b5782ebefe96fcb2161ee55ead4d17744a30
GET /wp-content/themes/travelwp/assets/css/font-linearicons.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 1610
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
162.214.80.24200 OK 866 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (2137), with no line terminators
Hash 01fa1b05d7c5a5cb0a16eebf8f7f3e09
f83401cdb8ca402f182c9ec21a33848f8b5d676f
940d6dd0568f191defe8fa6e7e0c6909e0fb2cb52208bc2fbd3378691d64eefb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 866
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.8.0
162.214.80.24200 OK 2.5 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (10211), with no line terminators
Hash 1975d1c3804f87df6a44aa0282f4cf7f
d547541663339d5c21b2a15db3a6a1504b531773
43e0db41fc902dfff00a21dbff0250bcd353da3025369e7087bbed21a1366d65
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_carousel/css/vc_carousel.min.css?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:19 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 2497
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/physcode/physcode_travelwp.css?ver=6.0.2
162.214.80.24200 OK 5.1 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/physcode/physcode_travelwp.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (19681), with CRLF, LF line terminators
Hash 39377cfe17928a78583c9bc7399a76f8
905ef879286affe7534666ba9a91766310481d4a
b2a6aae8ee305ce7ecbb9c402ff2d14ad756dfff00ff611510116caae6cdae9a
GET /wp-content/uploads/physcode/physcode_travelwp.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 5072
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/instagram-feed/img/placeholder.png
162.214.80.24200 OK 176 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/instagram-feed/img/placeholder.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1000 x 560, 1-bit colormap, non-interlaced\012- data
Hash a5443c5bb9bd40f1b1e6652eedce9925
aefb6c761d953a69c8b7ee7d98cad00545d74364
f623564c53c2e08780c064012cfbdbde0a80ee56816f4d5d3d52c46ed285cb95
GET /wp-content/plugins/instagram-feed/img/placeholder.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
content-length: 176
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:42 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0
162.214.80.24200 OK 3.3 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8853)
Hash 5e64f5fd6495dfc1fc6e4e09633ce3c6
f25ab01843b551a17392b49e62de0ee55b3b42b2
9a1fa9a504e2329245fe415f0ac5642579a9a745c854f6e9a1ff6cd01f5b604a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:19 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 3306
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
162.214.80.24200 OK 9.7 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (27481)
Hash 0c1aa0f032eb73f1ecf9ecbe84a50487
65715c2dbe225d87deaaf130f7d5fbc08c0c6c90
63fa635497485fc2160c77ce22cd0d32de16e7791b90de3a276a5ac7a9fae35c
GET /wp-content/plugins/instagram-feed/js/sbi-scripts.min.js?ver=6.0.6 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:18 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 9688
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
162.214.80.24200 OK 14 kB URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (36560)
Hash 9ca93625e25e2cd51ca00e1d8b222e97
c1696012dc42fd84e7d5c9f9e03a9547af0be97f
3e7f45bc73caeee5023ab8a0e66721c9858770498b4049618df71090ec2b9542
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/datepicker.min.js?ver=1.13.1 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 13817
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/js/bootstrap.min.js?ver=20151215
162.214.80.24200 OK 14 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/js/bootstrap.min.js?ver=20151215
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32003)
Hash 90b602e96dc8686ce38d4716c58e7284
701fb82d49244c5ebc04414adee026021f3a251e
d390d1917f2110b49e28e8f78523b3d72c333ef332f4759501e37d1113e92625
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/js/bootstrap.min.js?ver=20151215 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 14315
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/jquery-ui/themes/smoothness/jquery-ui.min.css?ver=1.12.1 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13996
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:25:43 GMT
Connection: keep-alive
badalascienceacademy.com/wp-content/uploads/2022/01/new.gif
162.214.80.24200 OK 386 B URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/01/new.gif
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 22 x 10\012- data
Hash 9e3af378c5e688fb9fe5abaf985adc8e
327063e5f24fba9762da34ff42d71cfec567464e
e81929e043f9047a8d3d4a60299cc95c3d7d1d2e0f42868db90690b9f8705d77
GET /wp-content/uploads/2022/01/new.gif HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 386
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:42 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/gif
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13996
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13996
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13996
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13996
Expires: Tue, 29 Nov 2022 01:18:59 GMT
Date: Mon, 28 Nov 2022 21:25:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 84237
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:13:33 GMT
age: 40330
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 84237
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/js/vendors.js?ver=20151215
162.214.80.24200 OK 62 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/js/vendors.js?ver=20151215
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 228db242d3d1cf27781e77a12682fb5f
bfd7833cd90ddf32a41be6a7107bb9614fa39bcb
de34fb04e9dd610922a2ebc1594d1d51d1c5092e8297b215a47587eab8fc7e06
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/js/vendors.js?ver=20151215 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-krGE6AIAMF2Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:31:22 GMT
age: 39261
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 84843
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/BSA.png
162.214.80.24200 OK 125 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/BSA.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1838 x 445, 8-bit/color RGBA, non-interlaced\012- data
Size 125 kB (124864 bytes)
Hash d7f0d4bfac298eb8c448e85f7f28f7e4
35a0434bc7b5bd64e970ddd0f96525986b3e871e
4f0ba540e433492805b68994f344402318b5c1859a6b4e8ed92e50d5bdac2207
GET /wp-content/uploads/2021/12/BSA.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 124864
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:42 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://badalascienceacademy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 402172
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://badalascienceacademy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:06:20 GMT
expires: Fri, 24 Nov 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 400763
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3
162.214.80.24200 OK 72 kB URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/assets/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/themes/travelwp/assets/css/font-awesome.min.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
content-length: 71896
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/fonts/fa-regular-400.woff2
162.214.80.24200 OK 15 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/fonts/fa-regular-400.woff2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 14844, version 1.0\012- data
Hash bdadb6ce95c5a2e7b673940721450d3c
f1e8cb035436d638da83d4696248cec831dcbe7a
92ba7bfaa43a35c94353e96860d99376313ee9b5fce6124d4e64067280f9a841
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/sticky-side-buttons/assets/fonts/fa-regular-400.woff2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/plugins/sticky-side-buttons/assets/css/font-awesome.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 14844
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: font/woff2
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM.jpeg
162.214.80.24200 OK 135 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM.jpeg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x716, components 3\012- data
Size 135 kB (135094 bytes)
Hash 297a331ebff2cbad888e97155b63986e
e404357aa29f4a24a9f48ded59425041e359a941
87de36166fdeada35df29b83c8d81c83550dc65ad11cf6be14e6916e73e76669
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM.jpeg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 135094
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM1.jpeg
162.214.80.24200 OK 172 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM1.jpeg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x716, components 3\012- data
Size 172 kB (172367 bytes)
Hash c5e4fa7a33496066b81c1b5982b2ad14
e785b22dac00f345eee70181a3c8b527bf04ca22
b03cc1aa4e19f7bfb4f2a769238227cd37318430b14de350aedb2de99df655a2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/2022/02/WhatsApp-Image-2022-02-07-at-12.50.54-PM1.jpeg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 172367
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/01/4.png
162.214.80.24200 OK 648 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/01/4.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 715, 8-bit/color RGBA, non-interlaced\012- data
Size 648 kB (647992 bytes)
Hash e732f83922ff8fc31c6ad55f58334b9c
ffaf50e87fa0b6716b5a35189c57658d16814d5e
22ef2544a3b6bb212e060ae92de9e2bb59e2c915102f62636243ceb0f32a4e98
GET /wp-content/uploads/2022/01/4.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 647992
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/01/2.png
162.214.80.24200 OK 740 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/01/2.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1280 x 715, 8-bit/color RGBA, non-interlaced\012- data
Size 740 kB (740501 bytes)
Hash 229c77a066f30823f2e30eaeb0774605
e59dd205b3f51e6f0f8e039694e0f5c82e6359d1
a341f8e02fbfb4cd2b7efb36b315765f8cb9494cc1246fe0468db23896dc42fd
GET /wp-content/uploads/2022/01/2.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 740501
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:43 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
162.214.80.24409 Conflict 83 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/html5-fallback.js?ver=5.6.3 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 409 Conflict
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/cropped-badala-favicon-32x32.png
162.214.80.24200 OK 2.0 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/cropped-badala-favicon-32x32.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 32d049a504124a836be7fc124731adef
c6012d25b01981ea323e6fd7ba7ee5449ec82ffa
acec7df983d8e5d0c33cba391534b938c05e6b78a518e57a12172918c0bab897
GET /wp-content/uploads/2021/12/cropped-badala-favicon-32x32.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 2028
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/cropped-badala-favicon-192x192.png
162.214.80.24200 OK 29 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/cropped-badala-favicon-192x192.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e15e2c9d7b436bb0d4db56daddea314
e9810800e5eb7f60f5062d973e543e58a467fb77
995824230b92516949a450a7fa25688fb2bf4e07c2249f50b5d9018c7a296958
GET /wp-content/uploads/2021/12/cropped-badala-favicon-192x192.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 29088
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 93e929e27e783b1e35c9ffe6dd2327c1
0dadfd7d03374ca9fdb2c56684ebf40134923b5e
7868566bbe943be617a4a3ec11cdfb9a4d4154e536dddc19a93382065286e740
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1509
Cache-Control: max-age=115951
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:45 GMT
Etag: "63844363-1d7"
Expires: Wed, 30 Nov 2022 05:38:16 GMT
Last-Modified: Mon, 28 Nov 2022 05:13:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 93e929e27e783b1e35c9ffe6dd2327c1
0dadfd7d03374ca9fdb2c56684ebf40134923b5e
7868566bbe943be617a4a3ec11cdfb9a4d4154e536dddc19a93382065286e740
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1509
Cache-Control: max-age=115951
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 21:25:45 GMT
Etag: "63844363-1d7"
Expires: Wed, 30 Nov 2022 05:38:16 GMT
Last-Modified: Mon, 28 Nov 2022 05:13:07 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
badalascienceacademy.com/wp-content/uploads/2021/12/badala-JEE-Icon-1-150x150.png
162.214.80.24200 OK 19 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/badala-JEE-Icon-1-150x150.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 20bff401138b03aa4f2a2cbd1dfeba65
e2d90d7440063999457c8869e4c89e1ac86eea2d
431da34b0018b4944dd578b1c605f65454647a0a3fd378c9c818486c3279c308
GET /wp-content/uploads/2021/12/badala-JEE-Icon-1-150x150.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 18741
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
scontent.cdninstagram.com/v/t39.30808-6/317097249_572398444894079_6964164515670570619_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=DSaNtGEV0xIAX9WYLCr&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCp7FtcSLN4nox7KsKuvpQv_UZRdJzSbcYobgHVbhOSNg&oe=63898D02
31.13.72.53200 OK 554 kB URL HTTP/2 scontent.cdninstagram.com/v/t39.30808-6/317097249_572398444894079_6964164515670570619_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=DSaNtGEV0xIAX9WYLCr&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCp7FtcSLN4nox7KsKuvpQv_UZRdJzSbcYobgHVbhOSNg&oe=63898D02
IP 31.13.72.53:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2048x2048, components 3\012- data
Size 554 kB (554473 bytes)
Hash a43e02b4a1673b8e32d70bcf6dd93435
90457c8bf6c180896c3f2d988dfec1724e949e2a
256fa9f2884f92df5d82b0a39836f151ca6cd514aa631a275bd879cd7b653f7b
GET /v/t39.30808-6/317097249_572398444894079_6964164515670570619_n.jpg?_nc_cat=107&ccb=1-7&_nc_sid=8ae9d6&_nc_ohc=DSaNtGEV0xIAX9WYLCr&_nc_ht=scontent.cdninstagram.com&edm=ANo9K5cEAAAA&oh=00_AfCp7FtcSLN4nox7KsKuvpQv_UZRdJzSbcYobgHVbhOSNg&oe=63898D02 HTTP/1.1
Host: scontent.cdninstagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 28 Nov 2022 08:04:28 GMT
accept-ranges: bytes
content-type: image/jpeg
x-haystack-needlechecksum: 3222238999
x-needle-checksum: 2853681259
content-length: 554473
content-digest: adler32=2853681259
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1512268381
date: Mon, 28 Nov 2022 21:25:45 GMT
x-fb-edge-debug: Qc0k47tru7dT6OEmbSJDqfLKVDopC4NEIGUy-63Eg95Oe4aSARORWAoG6V-eEr5F-WmvBQ8aTEXcEE8IAON59yTlU486P1xA8T7XO_B5y2E
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/badala-neet-icon-1-150x150.png
162.214.80.24200 OK 20 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/badala-neet-icon-1-150x150.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f4258c7010a5abc6103e1e1f6e39bd9
f3d73b53f5004c595bbf78a988e3c7a5426d2f80
42fbf837a363160b9b9b13c51114400a041fcee56b27afa513266882225af768
GET /wp-content/uploads/2021/12/badala-neet-icon-1-150x150.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 19569
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/badala-7-to-10-icon-1-150x150.png
162.214.80.24200 OK 19 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/badala-7-to-10-icon-1-150x150.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 77a07ea4ac0f66eb4bb6b323d6c895a3
09e19a71f9425632bee197aa24e73bb98fa7dc1d
50559f85dd04b721642c2b01da859dcd152f8e84839d60d494df47cfeb3808f7
GET /wp-content/uploads/2021/12/badala-7-to-10-icon-1-150x150.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 19410
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2022/01/aditya-badala.jpg
162.214.80.24200 OK 35 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2022/01/aditya-badala.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, xresolution=62, yresolution=70, resolutionunit=3, software=paint.net 4.3.4], baseline, precision 8, 194x237, components 3\012- data
Hash 955f1c88839e0835989e308c27e15aa9
798fa4eece8e4e307d196e3ec693d8fd15619e88
d08a5d2694fee445d51ae5e0f16eb5de3115b8bce5e5c82acde71be9da0fde65
GET /wp-content/uploads/2022/01/aditya-badala.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 35165
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/shailendra-jha.png
162.214.80.24200 OK 49 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/shailendra-jha.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 194 x 237, 8-bit/color RGB, non-interlaced\012- data
Hash 2987c505d4c8000a7ef856c6795c85a6
bb1e54a1103a480024f550a866419a70f0deb731
4a90f252d9df23b93478dcd386967596ebc1b7cc56080ea5a223908ba1bf6cdb
GET /wp-content/uploads/2021/12/shailendra-jha.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 48732
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/s.-k.-jain.png
162.214.80.24200 OK 47 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/s.-k.-jain.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 194 x 237, 8-bit/color RGB, non-interlaced\012- data
Hash e885c4e03e20fdd517299fefc8a8e8dc
814d19d7b874726ccf3aaddcbb3ea687673c2d8c
e187f8842ae53821d5d3f256891dba05027bbf7dc3e9ca6bfb64fd97fec80635
GET /wp-content/uploads/2021/12/s.-k.-jain.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 46773
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/Sharad-Jain.png
162.214.80.24200 OK 52 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/Sharad-Jain.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 194 x 237, 8-bit/color RGB, non-interlaced\012- data
Hash 51d62e11ee6924b16fff0508afc5a3cb
2a05849147f0a36b305ed244cc70f9619a62f0d5
5dd529e14260950a58b2f7af323af9c9d49bc9ecbcef3ee74cae3131608906ab
GET /wp-content/uploads/2021/12/Sharad-Jain.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 52250
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/2021/12/Rajnish-Goswami.png
162.214.80.24200 OK 47 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/2021/12/Rajnish-Goswami.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 194 x 237, 8-bit/color RGB, non-interlaced\012- data
Hash d6e40e05bcc14f4704805e929666f6b9
f55d1528f36461fd48709fb09b61156c866641e8
97f3a46f75cc1d7f8b8999184467b98795f78615f1abc201ea9a3325fe2a5fdc
GET /wp-content/uploads/2021/12/Rajnish-Goswami.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:16 GMT
accept-ranges: bytes
content-length: 47250
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
162.214.80.24200 OK 280 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 27 x 27, 8-bit colormap, non-interlaced\012- data
Hash d9d2d0b1308cb694aa8116915592e2a9
3ca48361cfe0e41163023d03c26296f375bb3eac
5d62e6c90005bfb71f6abb440f9e4753681cb23bbd5e60477ab6f442d2f0e69c
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/close.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
content-length: 280
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
162.214.80.24200 OK 1.4 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 31f15875975aab69085470aabbfec802
777e92c050f600b4519299c3d786b8f2f459fea4
15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/next.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
content-length: 1350
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
162.214.80.24200 OK 8.5 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/loading.gif HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
content-length: 8476
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/gif
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/312505784_415515920797885_6890623981410159233_nlow.jpg
162.214.80.24200 OK 16 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/312505784_415515920797885_6890623981410159233_nlow.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x286, components 3\012- data
Hash 5b4480515507294c2417a8b4940b57e7
0d91182a9df67ca2bc5dd1b6dfb177dd0e503a99
7a96620725bd5734eeb986600ea84ca0188c01098fb2d53f02671edcd5524e3e
GET /wp-content/uploads/sb-instagram-feed-images/312505784_415515920797885_6890623981410159233_nlow.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 14:45:23 GMT
accept-ranges: bytes
content-length: 16013
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/312132464_5463537927100873_6655380988555670087_nlow.jpg
162.214.80.24200 OK 21 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/312132464_5463537927100873_6655380988555670087_nlow.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x349, components 3\012- data
Hash 9ccd74f2bfd07ef93a10b683357e0722
87bdb907f6e9a55e745db615b83dc79096ef15c2
e25c98000c665f1767b7e9e572dfaead3954bf291296b42f3fec85453f8422ee
GET /wp-content/uploads/sb-instagram-feed-images/312132464_5463537927100873_6655380988555670087_nlow.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 14:45:24 GMT
accept-ranges: bytes
content-length: 21228
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/313260439_553967920070465_7529920450364651180_nlow.jpg
162.214.80.24200 OK 19 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/313260439_553967920070465_7529920450364651180_nlow.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x312, components 3\012- data
Hash f2d3be5474ae643f368186a64c2df57f
71f656b3d3cbd423aabc82db5ebb7ee66152f651
188c4b3359439b8ed1798e07ae104d4a19593505dccfe77172469d6dbd6dea93
GET /wp-content/uploads/sb-instagram-feed-images/313260439_553967920070465_7529920450364651180_nlow.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Nov 2022 11:06:38 GMT
accept-ranges: bytes
content-length: 19371
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/315544624_559391212861469_9177747103029331404_nlow.jpg
162.214.80.24200 OK 21 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/315544624_559391212861469_9177747103029331404_nlow.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x317, components 3\012- data
Hash d0402af6ce876f970554d7a8759c57ad
488da092a902cb726762909a3e955db2d9beedf7
cadf4acc32a87ccf98352067f5bfc7e81904d2ba7c6ba2867da1ef6b31ecae83
GET /wp-content/uploads/sb-instagram-feed-images/315544624_559391212861469_9177747103029331404_nlow.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Nov 2022 08:57:26 GMT
accept-ranges: bytes
content-length: 21043
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/310879809_911423729832127_6643409103996611168_nlow.jpg
162.214.80.24200 OK 28 kB URL HTTP/2 badalascienceacademy.com/wp-content/uploads/sb-instagram-feed-images/310879809_911423729832127_6643409103996611168_nlow.jpg
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x320, components 3\012- data
Hash 39bd61a28ef59bbb27b8a25f2a3fe8e0
6a11b40ab68efcc9b52504bad2f88e0c9e945317
01c745e91125d091975c8c03f2962f9123065eab0ec4bdfc1558dc1849785863
GET /wp-content/uploads/sb-instagram-feed-images/310879809_911423729832127_6643409103996611168_nlow.jpg HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:15 GMT
accept-ranges: bytes
content-length: 28511
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/jpeg
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
162.214.80.24200 OK 1.4 kB URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 84b76dee6b27b795e89e3649078a11c2
6640a3432f7ba7aea6129cdf7a5d3eabd47c295c
7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2
GET /wp-content/plugins/js_composer/assets/lib/lightbox2/dist/images/prev.png HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/wp-content/plugins/js_composer/assets/lib/lightbox2/dist/css/lightbox.min.css?ver=6.8.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
content-length: 1360
cache-control: max-age=31536000
expires: Tue, 28 Nov 2023 21:25:45 GMT
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: image/png
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-admin/admin-ajax.php
162.214.80.24500 Internal Server Error 0 B URL HTTP/2 badalascienceacademy.com/wp-admin/admin-ajax.php
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 194
Origin: https://badalascienceacademy.com
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 500 Internal Server Error
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 28 Nov 2022 21:25:45 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CMontserrat&display=swap&ver=1664426645
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CMontserrat&display=swap&ver=1664426645
IP 142.250.74.10:0
GET /css?family=Open%20Sans:300,400,500,600,700,800,300italic,400italic,500italic,600italic,700italic,800italic%7CMontserrat&display=swap&ver=1664426645 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 28 Nov 2022 21:25:42 GMT
date: Mon, 28 Nov 2022 21:25:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/css/dashicons.min.css?ver=6.0.2
162.214.80.24200 OK 0 B URL HTTP/2 badalascienceacademy.com/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.214.80.24200 OK 0 B URL HTTP/2 badalascienceacademy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:13 GMT
accept-ranges: bytes
cache-control: max-age=21600
expires: Tue, 29 Nov 2022 03:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: application/javascript
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/style.css?ver=6.0.2
162.214.80.24200 OK 0 B URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/style.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/travelwp/style.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/themes/travelwp/assets/css/bootstrap.min.css?ver=6.0.2
162.214.80.24200 OK 0 B URL HTTP/2 badalascienceacademy.com/wp-content/themes/travelwp/assets/css/bootstrap.min.css?ver=6.0.2
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/themes/travelwp/assets/css/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:14 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
badalascienceacademy.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
162.214.80.24200 OK 0 B URL HTTP/2 badalascienceacademy.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0
IP 162.214.80.24:0
ASN #46606 UNIFIEDLAYER-AS-1
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.8.0 HTTP/1.1
Host: badalascienceacademy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://badalascienceacademy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 14 Oct 2022 10:43:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Wed, 28 Dec 2022 21:25:42 GMT
vary: Accept-Encoding
content-encoding: gzip
x-endurance-cache-level: 2
x-nginx-cache: WordPress
content-type: text/css
date: Mon, 28 Nov 2022 21:25:42 GMT
server: Apache
X-Firefox-Spdy: h2